Enable logging using on multiples rules
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-28-2019 05:48 PM - edited 02-21-2020 09:05 AM
Hello Team,
I have to enable logging on more than 3000 policy rules.
Can you please share a way to do this ?
Thanks in advance for your helps.
Regards,
Zanga
- Labels:
-
NGFW Firewalls
-
NGIPS
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-28-2019 09:26 PM
Are using fmc or fdm?
Using FMC, you can make API calls to modify your access policies logging.
Go to your fmc webpage by adding: ..../api/api-explorer and take a look on policy apis.
Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-29-2019 08:19 AM
I am using Fmc.
Please how can i find the policy id to edit ?
Do i have to specify each rules it the script ?
Thanks for your Helps.
regards,
Zanga
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-30-2019 02:14 PM
You will need to get your container-id which corresponds to your parent ACP (Access Control Policy) using URL:
https://fmc.supportlan.com/api/fmc_config/v1/domain/Domain-UUID/policy/accesspolicies
This will return your contained-id.
Once done, you will read all access rules into this container id using url:
https://fmc.supportlan.com/api/fmc_config/v1/domain/Domain-UUID/policy/accesspolicies/Container-UUID/accessrules
And then you will get all your rules with their ID. Finally, just do a loop for every rules you have to modify your logging configuration.
Hope that clarify a bit
Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-25-2019 09:20 AM
Hello Francesco,
Thanks for your answer.
I am still not able to enable loggin, Can you please help me ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-26-2019 09:25 PM
Are you trying to access from outside the dcloud? Not sure you can do that.
Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-27-2019 03:05 AM
yes did a get which shows the rules .
I am failling at this step: And then you will get all your rules with their ID. Finally, just do a loop for every rules you have to modify your logging configuration.
I got syntax error each time I tryed.
Regards,
Zanga
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-28-2019 02:39 PM
This WE is a long weekend in Canada but I'm going to do my best to answer soon.
Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
